{"vulnerability": "CVE-2024-0941", "sightings": [{"uuid": "1a94c279-191b-470f-94fa-43ac55f4ab85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0941", "type": "seen", "source": "https://t.me/arpsyndicate/3263", "content": "#ExploitObserverAlert\n\nCVE-2024-0941\n\nDESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-0941. A vulnerability was found in Novel-Plus 4.3.0-RC1 and classified as critical. This issue affects some unknown processing of the file /novel/bookComment/list. The manipulation of the argument sort leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier VDB-252185 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.", "creation_timestamp": "2024-01-28T09:56:15.000000Z"}, {"uuid": "fbe1a893-24a9-4748-9eb0-ffedd203244a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0941", "type": "seen", "source": "https://t.me/ctinow/177780", "content": "https://ift.tt/J3DL6wg\nCVE-2024-0941 Exploit", "creation_timestamp": "2024-02-01T21:16:15.000000Z"}, {"uuid": "203c4214-ea3d-4023-bdee-75ebd4dd3a77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0941", "type": "seen", "source": "https://t.me/ctinow/174459", "content": "https://ift.tt/w2j0dLB\nCVE-2024-0941", "creation_timestamp": "2024-01-26T20:32:06.000000Z"}, {"uuid": "8268cc2d-4191-43a7-a999-1a16fc05a574", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0941", "type": "seen", "source": "https://t.me/ctinow/187868", "content": "https://ift.tt/VN8r625\nCVE-2024-0941 | Novel-Plus 4.3.0-RC1 /novel/bookComment/list sort sql injection", "creation_timestamp": "2024-02-19T18:31:33.000000Z"}]}